Effective date: February 26, 2026 · Last updated: March 4, 2026
Highbound, Inc. ("Highbound," "we," "our," or "us") operates the BibScore mobile application and the website at bibscore.com (collectively, the "Service"). BibScore is a community-powered platform that helps families find restaurants with family-friendly amenities in the Houston area.
This Privacy Policy describes how we collect, use, share, and protect your personal information when you use the Service. It also explains your rights regarding your data and how to exercise them.
By creating an account or using BibScore, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use the Service.
When you create a BibScore account, you sign in using either Google Sign-In or Apple Sign-In. Through this process, we receive and store:
We use this information solely to create your BibScore account, display your public profile, and communicate with you about the Service. We do not access your Google or Apple account beyond the information provided during sign-in.
When you contribute to BibScore, we collect and store the content you submit:
Important: Amenity reports and your display name are visible to all BibScore users. Your email address is never displayed publicly.
With your explicit permission (granted through your device's operating system), BibScore accesses your device's precise location to display restaurants near you on the map. We only request "when in use" location permission — we never track your location in the background, use geofencing outside the app, or infer movement patterns, home locations, or commute routes.
When you perform a search, we log the search coordinates (the center of the area you searched) and, if you have granted location permission, your device's current location at the time of the search. This data is stored in our search event logs and used to analyze which neighborhoods have the most demand for family-friendly dining information, helping us prioritize where to add more establishment data. Search event data is retained for up to 24 months and then permanently deleted.
You can revoke location access at any time through your device settings (iOS: Settings → Privacy & Security → Location Services → BibScore). The app will continue to work without location access, but you will need to manually search for areas instead of seeing nearby results. Revoking location access stops us from collecting your device location in future search events.
We automatically collect certain technical information when you use the Service:
We use the information we collect for the following purposes:
| Purpose | Data Used |
|---|---|
| Authenticate your identity and manage your account | Account information (name, email, profile photo) |
| Display nearby restaurants on the map | Location data (not stored) |
| Show amenity reports and scores to all users | Amenity reports, display name |
| Calculate trust scores for data quality | Report history, flag history |
| Moderate content and prevent abuse | Reports, flags, account information |
| Analyze search demand to improve establishment coverage | Search event data, location data |
| Identify neighborhoods needing more establishment data | Aggregated search location data |
| Improve the Service and fix bugs | Usage data, crash data, device information |
| Communicate with you (e.g., support, updates) | Email address |
| Comply with legal obligations | Any data as required by law |
We do not use your information for advertising, profiling, or automated decision-making that produces legal effects.
We do not sell your personal information. We do not share your personal information with third parties for their own marketing purposes.
We share information only in the following limited circumstances:
Your display name, profile photo, and amenity reports are visible to all BibScore users. Your email address is never shared publicly.
We use the following third-party service providers to operate BibScore. These providers process your data on our behalf under data processing agreements and are contractually obligated to protect it in accordance with applicable law:
| Provider | Purpose | Data Shared | Privacy Policy |
|---|---|---|---|
| Supabase | Authentication, user management | Account credentials, email, user ID | supabase.com/privacy |
| Google Cloud Platform | Application hosting, database, photo storage | All application data (encrypted at rest and in transit) | cloud.google.com/privacy |
| Google Maps Platform | Map rendering, place data | Device location (for map display), IP address | policies.google.com/privacy |
| Google Sign-In | Authentication | Google user ID, email, profile info | policies.google.com/privacy |
| Apple Sign-In | Authentication | Apple user ID, name, email (or relay email) | apple.com/legal/privacy |
| Expo (EAS) | Mobile app build and delivery | Crash reports, update metadata | expo.dev/privacy |
We may disclose your information if we believe in good faith that disclosure is necessary to: (a) comply with applicable law, regulation, or legal process; (b) enforce our Terms of Service; (c) protect the rights, safety, or property of Highbound, Inc., our users, or the public; or (d) respond to an emergency involving danger of death or serious physical injury.
If Highbound, Inc. is involved in a merger, acquisition, or sale of assets, your personal information may be transferred as part of that transaction. We will notify you via email or prominent notice within the app before your information becomes subject to a different privacy policy.
We retain your data for as long as necessary to provide the Service and fulfill the purposes described in this policy:
| Data Type | Retention Period |
|---|---|
| Account information (name, email, profile) | Until you delete your account |
| Amenity reports | Until you delete the report or your account. Upon account deletion, reports are anonymized (disassociated from your identity) to preserve community data. |
| Photos | Until you delete the associated report or your account |
| Edit suggestions and data issue reports | Until you delete your account |
| Search event data (search queries, coordinates, filters) | 24 months, then permanently deleted |
| Server logs (IP address, request metadata) | 30 days |
| Crash reports | 90 days |
You can delete your BibScore account at any time from within the app by going to Profile → Settings → Delete Account. You can also request account deletion by emailing privacy@bibscore.com.
When you delete your account:
Account deletion is processed within 30 days. Some data may persist in encrypted backups for up to 90 days after deletion, after which it is permanently purged.
We take the security of your data seriously and implement appropriate technical and organizational measures, including:
No method of electronic transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. If you become aware of a security vulnerability, please contact us immediately at security@bibscore.com.
BibScore is designed for use by parents, caregivers, and adults who are looking for family-friendly dining options. The Service is not directed to children under 13 (or under 16 in certain jurisdictions), and we do not knowingly collect personal information from children.
If you are a parent or guardian and believe your child under 13 has created a BibScore account or provided personal information to us, please contact us at privacy@bibscore.com. We will promptly delete the child's account and associated data.
Regardless of where you live, you can:
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):
To exercise your rights, email privacy@bibscore.com with the subject line "CCPA Request." We will verify your identity and respond within 45 days.
Categories of personal information collected in the preceding 12 months: Identifiers (name, email, user ID, device identifier, IP address); geolocation data (precise device location, search coordinates); search activity data (search queries, filters, coordinates, timestamps); internet or electronic network activity (usage data, device information); user-generated content (reports, photos, edit suggestions).
If you reside in a jurisdiction with data protection laws (such as the EU/EEA under GDPR, the UK, or other U.S. states with consumer privacy laws), you may have similar rights to access, correct, delete, and port your data. Contact us at privacy@bibscore.com to exercise these rights. We will respond to all data rights requests within 30 days.
BibScore is powered by community-submitted amenity reports. To maintain data quality and a safe environment:
If your content is removed, you can contact support@bibscore.com to request a review of the decision.
Some browsers transmit "Do Not Track" (DNT) signals. Because there is no industry standard for how to respond to DNT signals, we do not currently respond to them. However, we do not engage in cross-site tracking or behavioral advertising.
The Service may contain links to third-party websites or services (such as restaurant websites). We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you visit.
We may update this Privacy Policy from time to time to reflect changes in our practices, the Service, or applicable law. When we make material changes, we will:
Your continued use of the Service after changes are posted constitutes your acceptance of the revised Privacy Policy.
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Highbound, Inc.
Houston, TX
Email: privacy@bibscore.com
General inquiries: hello@bibscore.com
Security issues: security@bibscore.com